AMENDMENTS TO THE CLAIMS 

The following listing of claims will replace all prior versions and listings of claims 
in the application. 

Listing Of Claims 

1 . (currently amended) A method of monitoring and controlling data transfer between 
a user terminal coupled to a first communication network and a second 
communication networ k, said first communication network coupled to said second 
communication network via a gateway and a firewall, said method including the 
steps of: 

sending an access request to said gateway from said user terminal requiring 
access to said second communication network; 
said gateway reading said access request; 

modifying at least one access rule in said firewall to permit access for said user 
terminal requesting access based on an authenticated IP address of said user 
terminal requesting access , said authenticated IP address including authentication 
of a user ; 

monitoring s i multanoous l y at said firewall the transfer of data between said user 
terminal and said second communication network; and 

dynamically controlling i in real time i bandwidth available to said user terminal at 
least on the basis of the authenticated user . 

2. (previously presented) The method of claim 1 , wherein said dynamic control of 
bandwidth available to said user terminal occurs whilst maintaining communication 
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of said user terminal with said second communication network. 

3. (previously presented) The method of claim 1 , wherein a restricted bandwidth is 
allocated to a single user terminal. 

4. (previously presented) The method of claim 1 , wherein a restricted bandwidth is 
shared between a plurality of user terminals. 

5. (previously presented) The method of claim 1 , wherein bandwidth is restricted for 
uploading data and/or downloading data. 

6. (previously presented) The method of claim 1 , wherein a restricted bandwidth is 
allocated to one or more terminals for a prescribed time period. 

7. (previously presented) The method of claim 1 , wherein a restricted bandwidth is 
allocated to one or more terminals on the basis of a priority status allocated to the 
one or more terminals or a user account. 

8. (previously presented) The method of claim 1, wherein the IP address of a user 
terminal is authenticated on the basis that the user terminal has previously been 
authenticated by the gateway using an encryption/decryption process. 

9. (previously presented) The method of claim 1 , further including the step of 
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monitoring all ports of access of said user terminal. 

10. (previously presented) The method of claim 1, further including the step of 
enabling and/or disabling one or more ports of access of a user terminal. 

11. (previously presented) The method of claim 1, further including the step of 
controlling access of a user terminal to the second communication network from a 
management terminal coupled to the first communication network. 

12. (previously presented) The method of claim 1, further including the step of 
monitoring a period of time a user terminal has access to the second 
communication network. 

13. (previously presented) The method of claim 1, further including the step of 
monitoring a quantity of data a user terminal uploads and/or downloads. 

14. (previously presented) The method of claim 1, further including the step of 
monitoring a cost to a user of their user terminal having access to the second 
communication network. 

15. (currently amended) A system for monitoring and controlling data transfer in 
communication networks, said system comprising: 

one or more user terminals coupled to a first communication network; 
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a second communication network coupled to said first communication network via 
a gateway and a firewall; 
wherein said firewall: 

simultaneously monitors transfer of data between said one or more user 
terminals and said second communication network for said user terminals having 
an authenticated IP address that has access to said second communication 
network, said authenticated IP address including authentication of a user; and 

dynamically control in real time A bandwidth available to said one or more 
user terminals at least on the basis of the authenticated user. 

16. (previously presented) The system of claim 15, wherein a single machine 
comprises both the gateway and the firewall. 

17. (previously presented) The system of claim 15, wherein the firewall is in a 
different machine from the gateway. 

18. (previously presented) The system of claim 15, wherein authentication of the IP 
address is carried out by the gateway. 

19. (previously presented) The system of claim 18, wherein authentication employs 
an encryption/decryption process to authenticate a remote terminal. 

20. (previously presented) The system of claim 15, wherein the firewall 
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simultaneously monitors all ports of access of one or more of said user terminals. 

21. (previously presented) The system of claim 15, wherein a restricted bandwidth is 
allocated to a single user terminal. 

22. (previously presented) The system of claim 15, wherein a restricted bandwidth is 
shared between a plurality of user terminals. 

23. (previously presented) The system of claim 15, wherein a restricted bandwidth is 
allocated to a user account. 

24. (previously presented) The system of claim 15, wherein bandwidth is restricted for 
uploading data and/or downloading data. 

25. (previously presented) The system of claim 15, wherein said dynamic control of 
bandwidth available to said one or more user terminals occurs whilst maintaining 
communication of said one or more user terminals with said second 
communication network. 

26. (currently amended) A gateway for monitoring and controlling data transfer in 
communication networks, said gateway comprising: 

a firewall for permitting access to a second communication network for one or 
more user terminals coupled to a first communication network having an 
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authenticated IP address , said authenticated IP address including authentication of 
a user ; 

wherein said gateway monitors simultaneously at said firewall transfer of data 
between said one or more user terminals and said second communication network 
and dynamically controls i in real time i bandwidth available to said one or more 
user terminals at least on the basis of the authenticated user. 

27. (previously presented) The gateway of claim 26, wherein the firewall 
simultaneously monitors all ports of access of one or more of said user terminals. 

28. (previously presented) The gateway of claim 26, wherein the dynamic control of 
bandwidth available to said one or more user terminals occurs whilst maintaining 
communication of said one or more user terminals with said second 
communication network. 

29. (previously presented) The gateway of claim 26, further comprising means for 
enabling and/or disabling one or more ports of access to each user terminal. 
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